Data Catalog API methods that are related to Data Catalog search and metadata are deprecated and will be discontinued on January 30, 2026. See Transition from Data Catalog to Dataplex Universal Catalog. Methods that are related to policy tags and policy tag taxonomies are not deprecated.
Returns the caller's permissions on a resource. If the resource does not exist, an empty set of permissions is returned (We don't return a NOT_FOUND error).
Supported resources are: - Tag templates. - Entries. - Entry groups. Note, this method cannot be used to manage policies for BigQuery, Pub/Sub and any external Google Cloud Platform resources synced to Data Catalog.
A caller is not required to have Google IAM permission to make this request.
HTTP request
POST https://datacatalog.googleapis.com/v1beta1/{resource}:testIamPermissions
Path parameters
Parameters
resource
string
REQUIRED: The resource for which the policy detail is being requested. See Resource names for the appropriate value for this field. It takes the form projects/{project}/locations/{location}/entryGroups/{entrygroup}.
Request body
The request body contains data with the following structure:
JSON representation
{"permissions": [string]}
Fields
permissions[]
string
The set of permissions to check for the resource. Permissions with wildcards (such as * or storage.*) are not allowed. For more information see IAM Overview.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-07-17 UTC."],[[["This endpoint checks a caller's permissions on a specified resource, returning an empty set if the resource doesn't exist, rather than a `NOT_FOUND` error."],["The supported resources for this operation include tag templates, entries, and entry groups, excluding BigQuery, Pub/Sub, and external Google Cloud Platform resources synced to Data Catalog."],["The HTTP request for checking permissions is a `POST` request to `https://datacatalog.googleapis.com/v1beta1/{resource}:testIamPermissions`, where `{resource}` is a path parameter."],["The request body should contain a JSON object with an array of string values representing the `permissions` to check for the resource."],["The API call requires the `https://www.googleapis.com/auth/cloud-platform` OAuth scope for authorization."]]],[]]
